Known Vulnerabilities for Fv Flowplayer Video Player by Foliovision

Listed below are 10 of the newest known vulnerabilities associated with "Fv Flowplayer Video Player" by "Foliovision".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2024-32955 json	Server-Side Request Forgery (SSRF) vulnerability in Foliovision FV Flowplayer Video Player.This issue affects FV Flowplayer V...	Not Provided	2024-04-24	2026-04-28
CVE-2024-32078 json	URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Foliovision FV Flowplayer Video Player.This issue affect...	Not Provided	2024-04-24	2026-04-28
CVE-2024-29122 json	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Foliovision: Making the...	Not Provided	2024-03-19	2026-04-28
CVE-2024-22299 json	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Foliovision: Making the...	Not Provided	2024-03-27	2026-04-28
CVE-2023-30499 json	Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in FolioVision FV Flowplayer Video Player plugin <= 7.5.32.7212 v...	6.1 - MEDIUM	2023-08-18	2023-08-22
CVE-2023-25066 json	Cross-Site Request Forgery (CSRF) vulnerability in FolioVision FV Flowplayer Video Player plugin <= 7.5.30.7212 versions.	8.8 - HIGH	2023-02-14	2023-11-07
CVE-2023-4520 json	The FV Flowplayer Video Player plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘_fv_player_user_v...	8.8 - HIGH	2023-08-25	2026-04-08
CVE-2022-25613 json	Authenticated Persistent Cross-Site Scripting (XSS) vulnerability in FV Flowplayer Video Player (WordPress plugin) versions <...	5.4 - MEDIUM	2022-04-04	2022-04-11
CVE-2022-25607 json	Authenticated (author or higher user role) SQL Injection (SQLi) vulnerability discovered in FV Flowplayer Video Player WordPr...	7.2 - HIGH	2022-03-18	2022-03-25
CVE-2021-39350 json	The FV Flowplayer Video Player WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the player_id parameter f...	6.1 - MEDIUM	2021-10-06	2021-10-14

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version
Application	Foliovision	Fv Flowplayer Video Player	7.4.37.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.9.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.7.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.6.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.4.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.3.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.19.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.18.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.16.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.15.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.14.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.13.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.12.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.1.727
Application	Foliovision	Fv Flowplayer Video Player	7.3.0.727
Application	Foliovision	Fv Flowplayer Video Player	7.2.8.727
Application	Foliovision	Fv Flowplayer Video Player	7.2.7.727
Application	Foliovision	Fv Flowplayer Video Player	7.2.6.727
Application	Foliovision	Fv Flowplayer Video Player	7.2.5.727
Application	Foliovision	Fv Flowplayer Video Player	7.2.4.727

Results limited to 20 most recent known configurations